Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/617673F490AA11ECAB296CB85A40D577.roa
File: 617673F490AA11ECAB296CB85A40D577.roa (raw, json)
Hash identifier: TOFV50yb6RYK0IvoqvtwzLNkCxPWHB9zbv5Sp4dqeAk=
Subject key identifier: 36:C1:38:D6:8E:86:75:BE:DA:FD:82:9E:5C:79:0E:ED:7F:6F:AE:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 14CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/617673F490AA11ECAB296CB85A40D577.roa
Signing time: Fri 18 Feb 2022 11:03:20 +0000
ROA not before: Fri 18 Feb 2022 11:03:16 +0000
ROA not after: Sat 31 Dec 2022 11:03:16 +0000
asID: 137951
IP address blocks: 154.209.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5324 (0x14cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 18 11:03:16 2022 GMT
Not After : Dec 31 11:03:16 2022 GMT
Subject: CN=620f7cf8-7136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0e:28:4b:38:84:3a:4f:7f:cb:8d:1c:e6:ed:
f6:f3:7f:27:0f:a0:a9:37:48:21:b1:d2:29:20:94:
3f:80:ab:0b:6c:39:20:aa:39:36:5c:d4:53:70:55:
1d:e3:38:a5:9e:14:4c:f5:3a:b8:a3:62:13:7d:89:
36:20:0c:01:2d:4e:9c:93:5d:6a:08:77:f7:0f:d0:
14:3b:1b:1e:96:f7:b7:31:60:f5:f9:0c:c5:03:17:
06:c1:94:74:53:f7:08:62:80:4e:8b:88:85:4b:a5:
97:1c:ed:95:46:52:7e:b8:79:e7:12:cc:85:ca:a3:
d9:de:6c:d2:0c:ff:91:0e:fb:00:1f:03:67:5c:1e:
21:87:dd:eb:65:bd:ec:d3:4d:18:c9:da:74:18:4e:
a5:c4:e6:c3:c9:90:dc:4b:88:1e:d7:38:03:fa:97:
5c:a9:1d:53:31:b0:36:58:17:2b:72:88:27:45:f7:
b3:fb:43:3b:7a:a8:6e:8e:65:f4:22:23:bf:59:07:
dd:3b:e1:8e:05:ed:fb:6a:55:28:b9:e0:1c:ec:8a:
9b:e8:fc:b7:c9:05:0b:ff:cb:3b:db:8e:3f:7f:ae:
fc:43:39:4f:df:16:64:1a:b6:1f:e9:82:a7:04:eb:
0d:2f:57:7b:5e:09:23:55:e7:f9:10:4c:07:4e:92:
dc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C1:38:D6:8E:86:75:BE:DA:FD:82:9E:5C:79:0E:ED:7F:6F:AE:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/617673F490AA11ECAB296CB85A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.132.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a4:58:8e:d1:57:d2:0d:75:c0:41:6e:22:ca:a7:cc:eb:f1:
7f:59:af:4f:60:7d:af:6d:6b:82:ae:b5:bf:ba:3a:d4:dc:07:
c0:38:e9:d7:55:3e:00:5b:02:c0:29:b6:8a:3c:59:7c:94:a6:
54:5d:8e:af:bc:c1:04:1a:d6:28:55:f6:64:c6:fe:f5:ed:33:
65:e9:77:42:d2:68:3e:66:bb:eb:33:e3:a0:4d:d4:51:16:26:
48:9b:34:f9:6a:e9:bb:3e:fa:3a:18:5b:cd:76:72:08:e6:31:
c2:66:fe:fd:51:83:ff:12:0b:e6:f9:c4:fe:7e:92:53:73:1f:
d9:f0:dd:8b:18:72:c8:9b:0a:e7:69:b3:0b:3f:cb:07:0e:12:
3d:1f:eb:ab:12:cd:94:5c:a7:56:4f:7a:31:3d:b5:4f:c6:fe:
5a:e7:fb:6f:9d:d1:dd:ad:33:20:67:91:6b:9f:08:19:a7:e5:
a4:d2:ef:ee:dc:50:4f:21:58:d7:e5:ff:a4:d8:28:84:5f:33:
2c:95:4e:db:4a:4f:ba:ff:3d:e2:eb:5b:63:f0:34:78:0f:ce:
0e:22:0c:50:ca:54:3b:56:38:d8:83:26:42:35:fc:d2:94:6a:
2f:71:d0:dc:0d:68:06:d2:d2:a0:e4:1b:f7:26:5e:20:78:9b:
d4:02:20:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:10 2023 by rpki-client on console-fra.rpki-client.org